CVE-2024-1455

Advisory

Affected versions of the langchain package are vulnerable to XML External Entity (XXE) Injection due to unrestricted XML entity expansion in the langchain_core.output_parsers.xml.XMLOutputParser component. The XMLOutputParser.parse, _transform, and _atransform implementations rely on xml.etree.ElementTree.fromstring and XMLPullParser without prohibiting entity expansion, allowing recursive entity references (Billion Laughs) to be processed.

Affected package

Affected versions

Fixed versions

Vulnerability changelog

This vulnerability has no description

Resources

• https://huntr.com/bounties/4353571f-c70d-4bfd-ac08-3a89cecb45b6
• https://github.com/langchain-ai/langchain/commit/727d5023ce88e18e3074ef620a98137d26ff92a3
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1455
• https://docs.python.org/3/library/xml.html
• https://github.com/langchain-ai/langchain/pull/19653
• https://github.com/advisories/GHSA-q84m-rmw3-4382
• https://inspector.pypi.io/project/langchain-core/0.1.35/packages/07/d0/1018dfc4263eb895a92fae77582e71d04ffd0b95869a9499b0b4ede51013/langchain_core-0.1.35.tar.gz/langchain_core-0.1.35/langchain_core/output_parsers/xml.py#line.137
• https://python-security.readthedocs.io/vuln/expat-billion-laughs.html